Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/K2Os3MJH91zxC1fm9lyTtMhQL_w.roa
File: K2Os3MJH91zxC1fm9lyTtMhQL_w.roa (raw, json)
Hash identifier: shgX12Dv1UgMH4pTwwuuCFGQFj3CjEfxgMLy1akx4EE=
Subject key identifier: 2B:63:AC:DC:C2:47:F7:5C:F1:0B:57:E6:F6:5C:93:B4:C8:50:2F:FC
Certificate issuer: /CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Certificate serial: 1B204253
Authority key identifier: 1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/K2Os3MJH91zxC1fm9lyTtMhQL_w.roa
Signing time: Mon 25 Apr 2022 13:48:58 +0000
ROA not before: Mon 25 Apr 2022 13:48:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 185.124.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455098963 (0x1b204253)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Validity
Not Before: Apr 25 13:48:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b63acdcc247f75cf10b57e6f65c93b4c8502ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f2:6b:38:d6:70:1f:1e:13:92:8d:a9:3e:d3:
ea:07:eb:58:dd:43:33:e8:d6:7b:b9:53:4d:2f:88:
4c:13:1f:74:8b:aa:7c:19:8e:61:a8:8a:4a:9f:dc:
17:a2:27:4f:7b:86:3f:8e:16:d3:92:f1:f8:e7:17:
96:f6:2f:e1:3c:cf:5a:6e:9c:60:54:76:b2:d0:51:
a3:bd:70:23:7a:ce:8a:d7:52:b7:2f:e4:fb:6f:3c:
0e:46:0e:5d:e8:e3:11:07:ff:4e:76:da:b7:ce:3d:
6b:d9:9e:56:cb:9a:d6:f3:cf:b6:ef:e9:d5:62:da:
5d:a8:0e:1f:22:62:b6:0f:c1:89:16:ff:3e:08:8d:
fa:69:65:a5:89:56:7b:4e:98:75:43:36:d2:78:ee:
66:8e:d9:bc:43:8a:a2:01:53:46:7f:19:81:12:62:
6d:67:12:fe:4d:1d:29:56:37:b5:b5:0d:37:27:e5:
f6:9d:81:43:2c:df:1b:46:62:92:92:49:a1:35:aa:
17:e3:69:d6:34:63:ab:d6:5d:8d:ab:36:94:dc:25:
d6:12:34:36:65:fd:d7:1f:51:8f:de:89:98:d4:2d:
f7:7d:ed:dd:fd:9d:06:fb:78:ee:18:b1:21:b7:a0:
9c:b4:58:bf:33:68:bc:e4:1c:af:89:6a:1b:2f:1a:
d1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:63:AC:DC:C2:47:F7:5C:F1:0B:57:E6:F6:5C:93:B4:C8:50:2F:FC
X509v3 Authority Key Identifier:
keyid:1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/K2Os3MJH91zxC1fm9lyTtMhQL_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.132.0/22
Signature Algorithm: sha256WithRSAEncryption
64:76:9d:38:17:ce:e4:c2:4a:0b:f3:ec:09:58:79:cf:7f:3f:
f4:89:09:cd:00:dd:c7:ea:69:b0:ee:0b:12:16:6c:08:30:b7:
63:0f:a2:fe:82:23:71:65:13:e5:53:0d:0b:9c:94:a5:4e:f7:
45:db:6d:b7:ac:80:a5:c1:4b:3f:82:19:8b:70:5a:db:e5:b7:
88:16:06:66:45:2e:8d:73:7a:95:21:a6:72:90:44:c4:50:51:
80:f9:77:80:77:e5:9f:13:c8:4f:b9:53:80:21:4a:03:2b:86:
0f:91:fe:da:9c:da:57:3a:77:82:97:34:55:8c:57:4e:43:db:
a4:8d:1e:37:f7:80:db:58:f1:15:84:e3:86:d2:61:99:e6:bc:
a5:f5:86:ec:d1:5d:e9:f4:94:36:45:07:ee:93:81:05:0e:b2:
f2:8c:28:29:cc:1a:d9:35:67:1d:77:4a:f9:34:ca:d7:f6:6b:
bb:ee:5c:01:53:ec:d0:73:85:3a:a1:a7:09:55:8d:2f:66:03:
35:90:4c:8a:9f:e1:c6:a1:cc:8e:9c:a5:e9:ff:c1:20:21:4e:
e9:f0:cd:8a:72:77:ba:09:4f:51:b4:ba:76:5c:9f:c3:43:e5:
c8:65:7d:94:0c:9b:1f:ff:d0:8d:c6:8e:29:1f:e4:3b:12:44:
de:1a:6c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:55 2023 by rpki-client on console-fra.rpki-client.org